On Wed, Jun 2, 2010 at 4:35 PM, Bob Meetin <bobm at dottedi.biz> wrote: > I am developing some php forms that require numerous arguments in the $_POST > string. This works fine. Is there anything that can be reasonably done to > not make all the ooohs and ahhhs display in the URL address bar which might > appear tempting to some viewers? > > Or perhaps better, what is a standard way to bullet-proof $_POST variables > to prevent trickery? > > -Bob If it's in the URL, it's not POST, it's GET. Unless I'm confused here. You could try storing the needed info in a session. -- -Jack Timmons Blog: http://www.codeacula.com Sandbox: http://www.trotlc.com Twitter: @codeacula Google Chat: Figure it out. C'mon, seriously.